To begin the application process, please enter your email address.
Company Contact Info
- Falls Church, VA
- Josh Biacan
Sorry, we cannot save or unsave this job right now.
Report this Job
Saving Your Job Alert
Job Alert Saved!
Could not save Job Alert!
You have too many Job Alerts!
This email address has reached the maximum of 5 email alerts. To create a new alert, you will need to log into your email and unsubscribe from at least one.
Email Send Failed!
Information Assurance Engineer
ECS Federal, LLC • Falls Church, VA
Posted 7 days ago
Get facts about other applicants with a CareerBuilder Account
ECS is seeking a Information Assurance Engineer to work in our Falls Church, VA office.
Please Note: This position is contingent upon contract award.
ECS has an opportunity to hire a Network Security Engineer based in Falls church VA supporting a mission critical, government-wide cybersecurity program. By supporting this program, you will be contributing to the development, implementation, and assessment of new defensive measures for the USPS.
The scope of the position includes the analysis and support of federally accredited networks and systems designed to provide network boundary defense from sophisticated threat actors. The ISE will review system documentation and design to ensure compliance with multiple federal security requirements standards through the application of security controls traceability matrices (SCTMs). You will review and update security documentation such as System Security Plans (SSP), Security Controls Traceability Matrix (SCTM), CONOPS, Risk Assessment Reports, Plan of Action and Milestones (POA&Ms), Interconnection Agreements, Risk Assessment Reports, Contingency Plans and Security Assessment Reports. You will support the change request process by reviewing documentation in collaboration with network security engineers and subject matter experts to provide comprehensive recommendations to the customer. The ISE will conduct vulnerability scans against these systems and review results to document the residual risk associated with findings when evaluated against mitigations. As an ISE, you will also be responsible working with ISSOs and ISSMs to ensure systems are operated and maintained in accordance with applicable policies, procedures, guidelines, and directives.
Day-to-Day Responsibilities include:
- Review and update security documentation to meet applicable federal requirements:
- System Security Plans
- Risk Assessment Reports
- Plan of Action and Milestones (POA&Ms)
- Interconnection Agreements
- Risk Assessment Reports
- Contingency Plans
- Security Assessment Reports
- Review policies and procedures as required for various security controls
- Conduct reviews and validations of system configurations in accordance with applicable guidelines
- Conduct vulnerability and compliance scans (i.e. Nessus) to determine overall system risk impacts and provide results to the customer and information system owner respectively
- Participate in change review meetings and document approved system changes
- Work with designated ISSO's/ISSM's to ensure systems are operated, maintained and disposed of in accordance with applicable governing policies, procedures, guidelines and directives.
All ECS employees are Consultants First and are absolutely committed to our clients' success. You must be a results-oriented professional with a proven ability to overcome challenges and a passion for excellence. Working for ECS is an opportunity for the right person to make an impact - both for our client and for the company.
In order to be successful in this job, we expect you to have the following skills and experience:
- Bachelor's Degree in an Information Technology related field and/or applicable equivalent work experience
- Minimum of seven (7) years of progressive experience as an ISSO or similar role including generating security documentation for requirements, assessment, compliance, Standard Operating Procedures, test results, etc.
- Demonstrated application of federal information system security requirements as promulgated in FISMA, OMB, NIST SP 800-30, NIST SP 800-37, NIST 800-39, NIST 800-53, NIST 800-53A, NIST SP 800-137, CNSSI 1253, and ICD 503
- Familiar with applying security configurations, checklists or benchmarks such as STIGs, United States Government Configuration Baseline USGCB, Center for Internet Security CIS, and The Security Content Automation Protocol SCAP
- Experience with vulnerability scanning and assessment tools such as Nessus
- Ability to multi-task in a deadline oriented environment
- Demonstrated ability to work well independently with little input, and as a part of a team
- Excellent work ethic and a high commitment to quality
- Professional Certification such asCISSP, CISA, CASP, GCIH
- Knowledge of firewall technologies
ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.
ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 2300+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.